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** See image for Certificate of Correction ** 

TITLE: Graphical network security policy management 

Abstract Text (1) : 

A method of establishing a representation of an abstract network security policy is 
disclosed. The representation is established in the form of a decision tree that is 
constructed by assembling graphical symbols representing policy actions and policy 
conditions. A user modifies properties of the graphical symbols to create a logical 
representation of the policy. Concurrently, the logical representation is 
transformed into a textual script that represents the policy, and the script is 
displayed as the user works with the logical representation. When the policy 
representation is saved, the script is translated into machine instructions that 
govern the operation of a network gateway or firewall. The policy representation is 
named. The policy representation may be applied to other network devices or objects 
by moving an icon identifying the representation over an icon representing the 
network device. Policies, network objects, and network services are stored in the 
form of trees. 



Brief Summary Text (4) : 

Administrators of computer networks generally think of network security in terms of 
abstract security policies . The administrators design the security policies to 
protect their organization's information resources against threats that may 
compromise the confidentiality, integrity, or availability of sensitive data. 
However, the way that people conceptualize security policies does not match the way 
that they must implement them using conventional, rule-based security policy 
models . 



Brief Summary Text (8) : 

Currently, security policies are generally prepared using an ordered list of rules. 
In past approaches, the network devices are designed to interact with operating 
systems having text-based, command-line interfaces . Because of these interfaces, 
administrators had to learn the command sets that controlled how the devices 
operated. The command sets were, and still are, cryptic and difficult to use. The 
command sets differ from one network device vendor to the next. Moreover, the 
relationship between different lines of a command set may cause problems; a 
previous rule may affect the execution of all later rules, or even prevent their 
use. These inter-relationships are difficult to remember or track. 

Brief Summary Text {17) : 

In addition, there are several problems associated with managing and maintaining 
the representations of security policies generated by use of the icon interface. 
The representations are difficult to conceptualize and relate to an abstract 
security policy . It is difficult to verify that security policies are applied 
correctly and consistently to all network objects. It is difficult to define 
exceptions and changes to security policies. The past approaches do not generally 
distinguish between users and network objects, and do not permit security policies 
to be ported to other locations. 
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Brief Summary Text (24) : 

Thus, there is a need for a method or mechanism to construct a network security 
policy without the use of a list of rules. In particular, there is a need for a way 
to construct a network security policy that is easily understood by a network 
administrator, that avoids the use of router-based rule sets, and in which an 
abstract security policy is easily correlated with a representation of the policy. 

Detailed Description Text (73) : 

The administration component 206 provides mechanisms for constructing 
representations of abstract network security policies . After a security policy is 
constructed, it is represented in the policy tree 316 as a named policy. The 
security policy is applied to a node of the network tree 314 by dragging the icon 
representing the policy from the policy tree 316 to the node in the network tree 
314. When the network tree 314 is saved, the administration component 206 
constructs instructions to the firewall that cause the firewall to enforce the 
security policies that have been defined. 

Detailed Description Text (156) : 

The mechanisms described above are used to define a graphic display, a script, and 
firewall instructions that reflect abstract network security policies . For example, 
consider a hypothetical company, Acme Corporation, which has employees organized as 
engineering, marketing, and administration departments. The administration 
employees do not need access to the Internet except to use electronic mail (email) . 
The engineering group uses anonymous file transfer protocol (FTP) to transfer files 
to satellite offices, accesses USENET newsgroups for solutions, and browses World 
Wide Web sites to look for software patches. The marketing group uses the Web for 
market research. Acme's standard security policy prohibits Acme systems from 
receiving Active-X or Java applets that can contain malicious code. 
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